ELSA-2020-5645

Опубликовано: 10 апр. 2020

Источник: oracle-oval

Платформа: Oracle Linux 5

Платформа: Oracle Linux 6

Описание

ELSA-2020-5645: Unbreakable Enterprise kernel security update (IMPORTANT)

[2.6.39-400.321.1]

net: qlogic: Fix memory leak in ql_alloc_large_buffers (Navid Emamdoost) [Orabug: 31055329] {CVE-2019-18806}

Обновленные пакеты

Oracle Linux 5

Oracle Linux x86_64

kernel-uek

2.6.39-400.321.1.el5uek

kernel-uek-debug

2.6.39-400.321.1.el5uek

kernel-uek-debug-devel

2.6.39-400.321.1.el5uek

kernel-uek-devel

2.6.39-400.321.1.el5uek

kernel-uek-doc

2.6.39-400.321.1.el5uek

kernel-uek-firmware

2.6.39-400.321.1.el5uek

Oracle Linux i386

kernel-uek

2.6.39-400.321.1.el5uek

kernel-uek-debug

2.6.39-400.321.1.el5uek

kernel-uek-debug-devel

2.6.39-400.321.1.el5uek

kernel-uek-devel

2.6.39-400.321.1.el5uek

kernel-uek-doc

2.6.39-400.321.1.el5uek

kernel-uek-firmware

2.6.39-400.321.1.el5uek

Oracle Linux 6

Oracle Linux x86_64

kernel-uek

2.6.39-400.321.1.el6uek

kernel-uek-debug

2.6.39-400.321.1.el6uek

kernel-uek-debug-devel

2.6.39-400.321.1.el6uek

kernel-uek-devel

2.6.39-400.321.1.el6uek

kernel-uek-doc

2.6.39-400.321.1.el6uek

kernel-uek-firmware

2.6.39-400.321.1.el6uek

Oracle Linux i686

kernel-uek

2.6.39-400.321.1.el6uek

kernel-uek-debug

2.6.39-400.321.1.el6uek

kernel-uek-debug-devel

2.6.39-400.321.1.el6uek

kernel-uek-devel

2.6.39-400.321.1.el6uek

kernel-uek-doc

2.6.39-400.321.1.el6uek

kernel-uek-firmware

2.6.39-400.321.1.el6uek

Связанные CVE

CVE-2019-18806

Ссылки на источники

Связанные уязвимости

CVE-2019-18806

CVSS3: 5.5

ubuntu

больше 5 лет назад

A memory leak in the ql_alloc_large_buffers() function in drivers/net/ethernet/qlogic/qla3xxx.c in the Linux kernel before 5.3.5 allows local users to cause a denial of service (memory consumption) by triggering pci_dma_mapping_error() failures, aka CID-1acb8f2a7a9f.